Bug 478145 – No way to stop superfluous insecure parts warning (https)

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 478145 - No way to stop superfluous insecure parts warning (https)


Summary:	No way to stop superfluous insecure parts warning (https)


Status:	RESOLVED DUPLICATE of bug 309088

Product:	epiphany
Classification:	Core
Component:	General
Version:	2.20.x
Hardware:	Other All

Importance:	Normal normal
Target Milestone:	---
Assigned To:	Epiphany Maintainers
QA Contact:	Epiphany Maintainers

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2007-09-18 19:23 UTC by freggy1
Modified:	2011-01-19 11:05 UTC

See Also:
GNOME target:	---
GNOME version:	2.19/2.20

Description freggy1 2007-09-18 19:23:01 UTC

Please describe the problem:
When part of a page is not loaded over https while the main URL is, Epiphany will give a warning. On some sites where safe parts are always loaded over HTTP, the user is flooded by a warning when clicking on each link, which is extremely annoying. There should be a way to white list sites (option: Do not ask me again for this site in dialog box)

Steps to reproduce:
1. Browse https://qa.mandriva.com/

Actual results:
On every different page you load, there is the same annoying warning message, stating: Some parts of this page are loaded over an insecure connection

Expected results:
There should be an option to stop these warnings. Firefox by default will only show this warning on the first page, and not show it again for the next pages.

Does this happen every time?


Other information:

Comment 1 Christian Persch 2007-09-18 21:00:22 UTC

You can set the "security.warn_viewing_mixed" pref to false in about:config as a workaround. Maybe we should make that the default...

Comment 2 freggy1 2007-09-19 18:41:10 UTC

Rather set security.warn_viewing_mixed.show_once to true, that seems like a much safer bet.

Personally I think the yellow notification bar which Firefox uses for pop-ups would be a great solution for this problem. It permits you to show the warning on each page, in a not too obtrusive way. 

Because I think mixing safe and non-safe contents is fine for sites like bugzilla, or my personal blog admin section (where I have the same problem), as it suffices for me the sensitive data like passwords is protected. But i would never accept such a problem on my web banking site: I would certainly not continue using it if I saw such a warning. So showing these warning is not entirely useless.

Comment 3 Baptiste Mille-Mathias 2009-01-13 21:48:26 UTC

CCing myself.

Just if my opinion maters, I thought a warning icon in the location bar would fit for my usage, but who am I to represent most of the user? :)

cheers

Comment 4 Reinout van Schouwen 2011-01-19 11:05:57 UTC

Thanks for the bug report. This particular bug has already been reported into our bug tracking system, but please feel free to report any further bugs you find.

*** This bug has been marked as a duplicate of bug 309088 ***